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Overview - VPN Mission Opportunity 



(S//SI//REL) Exploit Virtual Private Network (VPN) communications that use IP Security (IPsec) algorithms 
and protocols: 



■ (U) ISAKMP - Internet Security Association and Key Management Protocol (RFC2407, RFC2408) 
provides an authentication and key exchange framework. 

■ (U) IKE - Internet Key Exchange (RFC2409) provides authentication and key exchange mechanisms. 



■ (U) ESP - Encapsulating Security Payload (RFC2406) provides traffic confidentiality (encryption) and 
optional integrity protection. 



■ (U) AH - Authentication Header (RFC2402) provides integrity protection that includes IP Header. 
Sometimes AH is used to wrap ESP for additional integrity. 
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IKE-ISAKMP Protocol 



UNCLASSIFIED 



Internet Key Exchange (IKE - RFC 2409) 
Internet Security Association and Key Management 
Protocol (ISAKMP - RFC 2408) 

0 12 3 

01234567890123456789012345678901 



Version 



IHL 



Type of Service 



Identification 



Time to Live 



Protocol = 17 



Total Length 



Flags 



Fragment Offset 



Header Checksum 



Source Address 



Destination Address 



Source Port = 500 



Length 



Destination Port = 500 



Checksum 



Initiator Cookie 



Initiator Cookie 



Responder Cookie 



Responder Cookie 



Next Payload 



Mj Ver 



Mn Ver 



Exchange Type 



Flags 



Message ID 



Length 



Key Management Data ... 



IP 

Header 



UDP 

Header 



IKE f 

y ISAKMP 
Header 



J 



UNCLASSIFIED 



TOP .9FORFT//OOMIMT//RFI TO I ISA F\/FY 




TOP SECRET//COMINT//REL TO USA FVEY 




ESP Protocol 
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AH-ESP Protocol 
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VPN IPsec Collection 
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■ (TS//SI//REL) Collection requires dwell time to capture IKE associated with ESP 

■ (TS//SI//REL) Collection requires link diversity to capture IKE associated with ESP 

(S//SI//REL) There is no guarantee that IKE and ESP will use the same link. 

■ (S//SI//REL) Collection requires multiple selectors to target external and tunneled sessions 

(S//SI//REL) VPN Tunnel External IP Addresses - To Target Decryption 
(S//SI//REL) Strong Selectors on Internal IP Links - To Target VPN Content 
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•VPN IKE and ESP Metadata 
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•VPN Encrypted Surveys 
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•Metadata Dataflow - IKE Fulltake 
•Metadata Dataflow - ESP Samples 
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Dataflows and Interfaces - Metadata 

(Classic) 
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■ VPN Analytic 
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■ (S//SI//REL) VPN IKE/ISAKMP Metadata in TOYGRIPPE is full-take 

■ (S//SI//REL) VPN ESP Metadata Sessions in PRESSUREWAVE is sampled (l/16 th ) 

■ (S//SI//REL) VPN AH/ESP Metadata Sessions in PRESSUREWAVE is sampled (l/16 th ) 
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Dataflows and Interfaces - IKE Metadata 
(New and Improved!) 

SECRET//COMINT//REL TO USA, FVEY 

Internet Key Exchange (IKE) /Internet Security Association Key Management Protocol (ISAKMP) 




VS-IKE-MD2 

T MAILORDER | 

C: IPsec/IKE Metadata , 
F ASDF 



TUBE 



VS-IKE-MD1 

T: Socket Connection 
C: IPsec/IKE Records 
F SOTF 



TURMOIL 



Interface Key 
T = Transport 
C = Content 
F = Format 




VS-IKE-MD3 



FALLOUT 


C: IPsec/IKE Metadata 
F ASDF 


gr -5 




TOYGRIPPE 



■ (S//SI//REL) VPN IKE/ISAKMP Metadata in TOYGRIPPE is full-take 

■ (S//SI//REL) VPN ESP Metadata Sessions in PRESSUREWAVE is sampled (l/16 th ) 

■ (S//SI//REL) VPN AH/ESP Metadata Sessions in PRESSUREWAVE is sampled (l/16 th ) 
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Dataflows and Interfaces - ESP Metadata 
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Dataflows and Interfaces - Analyze 
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■ (U//FOUO) KEYCARD IP Target Action must be ANALYZE 

■ (U//FOUO) Full-take of IKE/ESP Sessions. 

■ (U//FOUO) No Analytic at this time 
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Dataflows and Interfaces - Survey 
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Internet Key Exch^ge (IKE) / Internet Security Association Key Management Protocol (ISAK^) 
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■ (U//FOUO) KEYCARD IP Target Action must be TRANSEQRM & SURVEY 

■ (TS//SI//REL) Candidate Sessions for Decryption include BME: 

vpnID = “08000000-0000-0000-0000-000000000001” 

■ (TS//SI//REL) Decrypted Sessions include BME: 

vpnID t “08000000-0000-0000-0000-000000000001” 
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Dataflows and Interfaces - Transform 
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Note 

* Selected Application Sessions 
are identified and selected from 
the decrypted packets extracted 
from the VPN tunnel and inserted 
into the TURMOIL input stream. 
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■ (TS//SI//REL) PIQ Blade provides PIQ-Services, PICARESQUE ECI Compartmented 

■ (TS//SI//REL) T ransform is Sanitization of Decrypt 

■ (S//SI//REL) VPN AH/ESP Session Transform capability is not available in Spin 12 

■ (U//FOUO) KEYCARD IP Target Action must be TRANSFORM 

■ (TS//SI//REL) Decrypted sessions have BME vpnID * “08000000-0000-0000-0000-000000000001” 
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VPN on Dell LPT 
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VPN on Dell LPT 
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Sample stats : 14-22 Oct 2009 



System 


KeyRequests 


KeyResponses 


KeyNotRecovered 


Packets Decrypted 


MHS_DEV 


8076 


0 


0 


0 


MHS_LIVE 


26501 


12200 


0 


8041883 


MHS_LPT 


1725 


0 


0 


0 


SMK6 


43087 


4755 


0 


1413532 



TOP .SFrRFT//rOMIMT//RFI TO I J.SA FVFY 




TOP SECRET//COMINT//REL TO USA FVEY 



IKE Metadata Sequence 
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